CVE-2024-12687
Dec. 16, 2024, 8:15 p.m.
Tags
Product(s) Impacted
PlexTrac
- 1.61.3
- before 2.8.1
Description
Deserialization of Untrusted Data vulnerability in PlexTrac (Runbooks modules) which allows Object Injection and arbitrary file writes. This issue affects PlexTrac: from 1.61.3 before 2.8.1.
Weaknesses
CWE-502
Deserialization of Untrusted Data
The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.
CWE ID: 502Date
Published: Dec. 16, 2024, 8:15 p.m.
Last Modified: Dec. 16, 2024, 8:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
5fea7123-217b-4b2d-ada8-8892719b43cd